SaaS Security Insights & Updates

Terminated Employee Offboarding: 7 Steps to Close Every Data Security Gap

Most data loss from departing employees happens before they ever leave. Learn how to close the gaps in terminated employee offboarding and how DoControl gives security teams full visibility before, during, and after the final day.

Melissa Garcia

min read

Jun 26, 2026

Melissa Garcia

min read

Jun 26, 2026

Terminated Employee Offboarding: 7 Steps to Close Every Data Security Gap

Melissa Garcia

min read

Jun 22, 2026

What Is AI Governance? A Practical Guide for SaaS-Driven Organizations

AI governance is quickly becoming the biggest SaaS compliance risk. Learn how to govern shadow AI, protect sensitive data, and stay audit-ready.

Anthropic’s Fable Shutdown: The New Front Line of AI Governance

Albert Louison

min read

Jun 19, 2026

Anthropic’s Fable Shutdown: The New Front Line of AI Governance

Anthropic was forced to disable access to its most advanced AI models following a U.S. government directive. Here's what the shutdown reveals about AI regulation, national security, open-source competition, and platform risk.

Melissa Garcia

min read

Jun 12, 2026

The Essential Guide to SaaS Compliance

Learn how to achieve SaaS compliance with SOC 2, GDPR, HIPAA, PCI DSS, and ISO 27001. Discover best practices for monitoring and reducing SaaS risk.

What Is UEBA? A Complete Guide to User and Entity Behavior Analytics

Melissa Garcia

min read

Jun 10, 2026

What Is UEBA? A Complete Guide to User and Entity Behavior Analytics

Learn how User and Entity Behavior Analytics (UEBA) helps detect insider threats, compromised accounts, and data exfiltration. Discover how modern SaaS security platforms use UEBA and contextual DLP to reduce risk.

Albert Louison

min read

Jun 5, 2026

Meta AI Support Chatbot: How Hackers Prompted Their Way Into High-Profile Instagram Accounts

Hackers exploited Meta's AI support chatbot to hijack Instagram accounts. Learn what happened, why it matters, and key AI security lessons.

Carnival Data Breach: 1 Employee. 6M Victims. 9M Files.

Melissa Garcia

min read

Jun 3, 2026

Carnival Data Breach: 1 Employee. 6M Victims. 9M Files.

The Carnival data breach exposed nearly 6 million customers through a single compromised employee account. Learn what happened, what was stolen, and how DoControl prevents identity-based breaches before they escalate.

CSPM vs. SSPM: Which Does Your Organization Need?

Melissa Garcia

min read

Jun 1, 2026

CSPM vs. SSPM: Which Does Your Organization Need?

CSPM and SSPM protect fundamentally different attack surfaces. Learn what sets them apart, when each applies, and why SaaS-heavy organizations can't afford to treat them as interchangeable.

Common SaaS Security Misconfigurations: What They Are, How They Happen, and How to Fix Them

Melissa Garcia

min read

May 26, 2026

Common SaaS Security Misconfigurations: What They Are, How They Happen, and How to Fix Them

29% of SaaS breaches stem from misconfigurations. Learn the 10 most common SaaS security misconfigurations, why they happen, and how to remediate them before they become incidents.

Melissa Garcia

min read

May 21, 2026

Top SSPM Tools and Vendors in 2026

Compare the top 10 SSPM tools and vendors of 2026. See different approaches, focus areas, pros, cons, and customers, helping you find a vendor that suits your needs.

What Is AI SPM? Why Most Definitions Are Missing the Point

Melissa Garcia

min read

May 20, 2026

What Is AI SPM? Why Most Definitions Are Missing the Point

AI SPM is one of cybersecurity's hottest buzzwords, but most vendors are only solving for half the problem. Learn what AI security posture management really means, and what a complete approach actually looks like.

SaaS Security as a Board-Level Risk: What It Means for Your CFO

Melissa Garcia

min read

May 15, 2026

SaaS Security as a Board-Level Risk: What It Means for Your CFO

A CFO doesn't need to become a SaaS security expert, but they need to be able to answer three business questions about it. Here's how each one looks through the lens of the finance organization.

The SSPM Buyer's Checklist: How to Evaluate SaaS Security Posture Management Platforms

Melissa Garcia

min read

May 14, 2026

The SSPM Buyer's Checklist: How to Evaluate SaaS Security Posture Management Platforms

Most SSPM vendors sound the same. They aren't. Use this buyer's checklist with criteria, demo questions, & red flags to pick one that eliminates risk.

Building an Enterprise SaaS Security Program: What You Need to Know

Melissa Garcia

min read

May 13, 2026

Building an Enterprise SaaS Security Program: What You Need to Know

Most teams know what to check. Few have a program. Learn how to build an enterprise SaaS security program that stays at baseline as your environment scales.

SSPM vs SASE: Why You Need Both for SaaS Security

Melissa Garcia

min read

May 11, 2026

SSPM vs SASE: Why You Need Both for SaaS Security

Learn the difference between SSPM and SASE, how they complement each other, and why companies need both to secure SaaS applications, identities, integrations, and sensitive data.

1 Breach, 9,000 Schools, 231 Million People: Inside the Instructure Data Breach

Melissa Garcia

min read

May 8, 2026

1 Breach, 9,000 Schools, 231 Million People: Inside the Instructure Data Breach

Hackers stole data on 231 million people across 9,000 schools in the Instructure Canvas breach. See what happened and how to protect your school's data.

Your HubSpot Data Is Public. You Just Don't Know It Yet.

Melissa Garcia

min read

May 7, 2026

Your HubSpot Data Is Public. You Just Don't Know It Yet.

HubSpot's Executive Business Review auto-generates public Google Drive files containing sensitive CRM, pipeline, and revenue data. Here's what's exposed and how to fix it.

SSPM Best Practices: How to Get the Most Out of SaaS Security Posture Management

Melissa Garcia

min read

May 6, 2026

SSPM Best Practices: How to Get the Most Out of SaaS Security Posture Management

Deploying SSPM is just the start. What happens next is the real challenge. These 10 best practices help security teams operationalize SaaS Security Posture Management and protect your SaaS data at scale.

ShinyHunters: Inside the Hacker Group Targeting Your SaaS Data (And How to Stop Them)

Melissa Garcia

min read

May 4, 2026

ShinyHunters: Inside the Hacker Group Targeting Your SaaS Data (And How to Stop Them)

ShinyHunters is the most notorious hacker group of the decade. Get a complete breakdown of ShinyHunters: their tactics, targets, attacks, and how to protect your SaaS environment in 2026.

DoControl Data Classification: Combining Content, Context, and Identity to Protect SaaS Data

Melissa Garcia

min read

May 4, 2026

DoControl Data Classification: Combining Content, Context, and Identity to Protect SaaS Data

Discover how DoControl’s unified, contextual Data Classification helps security teams identify, prioritize, and remediate risky data across Google Workspace - both in real time and historically.

SaaS Security vs. Cloud Security: What's the Difference?

Melissa Garcia

min read

Apr 30, 2026

SaaS Security vs. Cloud Security: What's the Difference?

SaaS security and cloud security aren't the same thing. Learn the key differences, where they overlap, and why the distinction matters for your security program.

SaaS Security Checklist: 15 Steps to Secure Your SaaS Stack

Melissa Garcia

min read

Apr 28, 2026

SaaS Security Checklist: 15 Steps to Secure Your SaaS Stack

Is your SaaS stack actually secure? Run through our 15-step checklist to find the gaps, fix the risks, and build a security program that holds up.

Melissa Garcia

min read

Apr 24, 2026

SSPM vs. CASB: What's the Difference?

SSPM vs. CASB: learn how each works, their key differences, where CASB falls short in 2026, and why SSPM is now the core layer for SaaS security.

Behavioral Analytics in SaaS Security: How to Detect, Prioritize, and Eliminate Insider Threats

Melissa Garcia

min read

Apr 23, 2026

Behavioral Analytics in SaaS Security: How to Detect, Prioritize, and Eliminate Insider Threats

Behavioral analytics is redefining SaaS security by exposing insider threats hidden in normal user activity. Discover how context-driven detection and risk scoring help teams identify anomalies, prioritize real risks, and prevent data exfiltration before it happens.

SSPM Explained: A Practical Guide to SaaS Security Posture Management in 2026

Melissa Garcia

min read

Apr 22, 2026

SSPM Explained: A Practical Guide to SaaS Security Posture Management in 2026

Learn what SSPM is, why it matters in 2026, how it compares to other solutions, and how automated remediation finally closes the SaaS security gap.

Vercel Breach: Third-Party AI Tool Compromise via Google Workspace OAuth

Melissa Garcia

min read

Apr 20, 2026

Vercel Breach: Third-Party AI Tool Compromise via Google Workspace OAuth

One compromised AI tool. One OAuth connection. Vercel’s breach shows how everyday SaaS apps can become attack vectors - and what security teams must do next.

Kraken Insider Incident Signals a Growing Security Threat Across the Crypto Industry

Melissa Garcia

min read

Apr 16, 2026

Kraken Insider Incident Signals a Growing Security Threat Across the Crypto Industry

A deep dive into the Kraken insider security incident, why traditional security models fail, and how modern data access governance prevents insider threats in crypto.

Top SaaS Security Risks in 2026 (And How to Mitigate Each One)

Melissa Garcia

min read

Apr 15, 2026

Top SaaS Security Risks in 2026 (And How to Mitigate Each One)

From insider threats to configuration drift - here are the 6 most critical SaaS security risks in 2026, what causes them, and the specific controls security teams need to mitigate each one.

DoControl's Role in Misconfigurations Management

Melissa Garcia

min read

Apr 13, 2026

DoControl's Role in Misconfigurations Management

Learn how DoControl prevents SaaS misconfigurations and configuration drift with real-time detection, context-aware policies, and automated remediation.

Mercor Data Breach: When AI Innovation Outpaces Security

Melissa Garcia

min read

Apr 10, 2026

Mercor Data Breach: When AI Innovation Outpaces Security

A massive data breach at AI startup Mercor exposes risks in AI supply chains, third-party tools, and data governance. Here’s what security teams need to know.

Strac vs. DoControl: Understanding Different Approaches to SaaS DLP

Melissa Garcia

min read

Apr 6, 2026

Strac vs. DoControl: Understanding Different Approaches to SaaS DLP

Compare DoControl and Strac across SaaS DLP and DSPM. Learn how each platform approaches data discovery, protection, and securing sensitive data in SaaS environments.

DoControl's Automated Remediation Workflows: Automation That Understands Your SaaS Risk

Albert Louison

min read

Apr 3, 2026

DoControl's Automated Remediation Workflows: Automation That Understands Your SaaS Risk

Most tools stop at visibility. We don't. Discover how DoControl workflows automate SaaS security remediation. See three real-world examples across different levels of complexity.

DoControl Raises the Standard for AI Security with Control for Google Gemini Gems

Melissa Garcia

min read

Mar 31, 2026

DoControl Raises the Standard for AI Security with Control for Google Gemini Gems

DoControl becomes the first platform to provide comprehensive SaaS security coverage for Google Gemini Gems.

Frontline vs Business Plus (Pro) vs Enterprise: Choosing the Right Google Workspace Plan Through a Security Lens

Melissa Garcia

min read

Mar 30, 2026

Frontline vs Business Plus (Pro) vs Enterprise: Choosing the Right Google Workspace Plan Through a Security Lens

Choose the right Google Workspace plan through a security lens. Compare Frontline, Business Plus, and Enterprise tiers, uncover key security gaps, and learn how DoControl delivers complete SaaS protection.

DoControl’s Role in Insider Risk Management

Melissa Garcia

min read

Mar 27, 2026

DoControl’s Role in Insider Risk Management

Learn how DoControl leverages identity-driven, context-aware insights to proactively manage insider risk and protect sensitive data across SaaS environments.

The $82,000/48hr Nightmare: Why Traditional SaaS Security Can’t Stop a Rogue API Key

Albert Louison

min read

Mar 20, 2026

The $82,000/48hr Nightmare: Why Traditional SaaS Security Can’t Stop a Rogue API Key

Learn the cautionary tale of what happened to this user after a simple API key for their Google Cloud environment was compromised, and why NHI's are the new biggest risk.

Melissa Garcia

min read

Mar 19, 2026

DoControl’s Role in DLP

Learn how DoControl protects companies from data overexposure and exfiltration with visibility, control, context-enriched policies, and automated remediation workflows.

DoControl vs. SpinAI: Comparing Approaches to SaaS Data Security

Melissa Garcia

min read

Mar 18, 2026

DoControl vs. SpinAI: Comparing Approaches to SaaS Data Security

Discover the differences between DoControl vs. SpinAI, and how backup and recovery compare to real SaaS data security, DLP, and automated remediation.

The Salesforce Experience Cloud Attack: A Wake-Up Call for Misconfigurations Management

Tamir Passi

min read

Mar 16, 2026

The Salesforce Experience Cloud Attack: A Wake-Up Call for Misconfigurations Management

Why the latest ShinyHunters campaign matters far beyond Salesforce and what security leaders should do about it.

Melissa Garcia

min read

Mar 12, 2026

DoControl’s Role in Data Governance

Discover how DoControl helps organizations govern SaaS data access with context-driven policies, automated remediation, and visibility across identities and AI agents.

Key AI Security Use Cases in SaaS | Solved by DoControl

Melissa Garcia

min read

Mar 10, 2026

Key AI Security Use Cases in SaaS | Solved by DoControl

Explore the key AI security use cases in SaaS and how DoControl helps security teams manage data access, non-human identities, configuration drift, and shadow AI.

How DoControl + Google Workspace AI Labels Work Together to Protect Sensitive Data

Albert Louison

min read

Mar 6, 2026

How DoControl + Google Workspace AI Labels Work Together to Protect Sensitive Data

Discover how DoControl uses Google Workspace AI labels to automate data protection with workflows that detect, remediate, and secure sensitive information.

Where Does Insider Risk Management Fit Within a SaaS Security Stack?

Melissa Garcia

min read

Mar 4, 2026

Where Does Insider Risk Management Fit Within a SaaS Security Stack?

Where does insider risk management fit in a SaaS security stack? Learn how SSPM connects behavior, access, and data exposure to reduce insider risk.

Former Nuance Employee Stole 1.2M Geisinger Patient Records

Melissa Garcia

min read

Mar 2, 2026

Former Nuance Employee Stole 1.2M Geisinger Patient Records

A former overly-permissioned vendor used legitimate access to exfiltrate 1.2M patient records. Explore the insider risk gaps that enabled it, and how to prevent it within your organization.

DoControl vs Wing Security: An SSPM Platform Comparison

Melissa Garcia

min read

Feb 25, 2026

DoControl vs Wing Security: An SSPM Platform Comparison

Compare DoControl vs Wing Security in this in-depth SSPM comparison. Explore visibility, workflows, identity security, and remediation capabilities.

Claude Code Security: AI That Secures Code, Not Your SaaS Ecosystem

Melissa Garcia

min read

Feb 23, 2026

Claude Code Security: AI That Secures Code, Not Your SaaS Ecosystem

Anthropic announced Claude Code Security. Cyber stocks are now dropping. Learn what this launch really means for the future of security, AI, and proactive cyber defense.

The Dawn of the AI-Driven Cybercrime Era: When "Vibes" Meet Velocity

Albert Louison

min read

Feb 20, 2026

The Dawn of the AI-Driven Cybercrime Era: When "Vibes" Meet Velocity

AI is transforming cybercrime at scale. Explore emerging threats like agentic intrusion and remote encryption - and the security strategies to stop them.

SaaS Security in 2026: The Complete Guide

Melissa Garcia

min read

Feb 19, 2026

SaaS Security in 2026: The Complete Guide

A complete enterprise guide to SaaS security, insider threat prevention, SaaS DLP, and automated remediation - built for security leaders protecting modern SaaS environments.

DSPM vs DLP: Differences, Use Cases, How to Decide

Melissa Garcia

min read

Feb 17, 2026

DSPM vs DLP: Differences, Use Cases, How to Decide

Compare DSPM vs DLP to understand key differences, use cases, and how to choose the right approach for SaaS and cloud data security.

Your 2026 Insider Risk Health Check: Uncover Your Insider Risk in SaaS

Melissa Garcia

min read

Feb 12, 2026

Your 2026 Insider Risk Health Check: Uncover Your Insider Risk in SaaS

Insider risk doesn’t look like a threat, until it is. See your gaps, receive tailored recommendations, & assess your insider risk posture with the 2026 Insider Risk Health Check.

How DoControl Enforces Workflows for Detection + Automatic Remediation of Misconfiguration Drift

Tamir Passi

min read

Feb 11, 2026

How DoControl Enforces Workflows for Detection + Automatic Remediation of Misconfiguration Drift

DoControl is the only platform that enables automatic remediation for misconfiguration drift, without hindering business productivity. Learn how our product works.

Migrating from Microsoft to Google Workspace: Keeping SaaS Security in Mind

Melissa Garcia

min read

Feb 9, 2026

Migrating from Microsoft to Google Workspace: Keeping SaaS Security in Mind

Organization's are migrating from Microsoft to Google Workspace. Discover how to securely migrate from Microsoft to Google Workspace while preserving SaaS data, permissions, and security controls.

The Hidden Security Risks of "Vibe Coding"

Albert Louison

min read

Feb 6, 2026

The Hidden Security Risks of "Vibe Coding"

Vibe coding is taking the tech world by storm, and the security one. Learn what vibe-coding is, the security risks involved, and how it's changing the cybersecurity landscape as we know it.

2026 Non-Human Identities (NHI) Report: DoControl Data

Melissa Garcia

min read

Feb 5, 2026

2026 Non-Human Identities (NHI) Report: DoControl Data

DoControl’s proprietary data findings reveal how non-human identities are transforming SaaS activity, data access patterns, and enterprise security risk.

Former Google Employee Caught Stealing Company AI Trade Secrets

Melissa Garcia

min read

Feb 2, 2026

Former Google Employee Caught Stealing Company AI Trade Secrets

A Google employee quietly stole thousands of confidential files using everyday SaaS tools. See how it happened, why it went undetected, and what companies must do to stop insider threats.

What is Moltbot? (Formerly, Clawdbot) | The Viral AI Assistant & the Security Risks it Brings

Melissa Garcia

min read

Jan 29, 2026

What is Moltbot? (Formerly, Clawdbot) | The Viral AI Assistant & the Security Risks it Brings

Moltbolt (formerly Clawdot) is a new AI agent, going viral for it's ability to act on behalf of the user. But, with this power, comes serious security concerns. Learn the top security risks associated with this new trending agent.

A Rogue Chrome Extension Exploits API Keys and Google Drive: A SaaS Security Nightmare

Albert Louison

min read

Jan 23, 2026

A Rogue Chrome Extension Exploits API Keys and Google Drive: A SaaS Security Nightmare

A rogue Chrome extension abused AI API keys and Google Drive OAuth access to exfiltrate data, exposing a growing SaaS and browser extension security risk. Get the full story.

Teaching Alerts to Think: How AI is Rewriting SaaS Security Alerts at DoControl

Matt Dubreuil

min read

Jan 22, 2026

Teaching Alerts to Think: How AI is Rewriting SaaS Security Alerts at DoControl

DoControl's new AI-powered agentic alerts are here. They continuously learn your environment, your users, and your system behaviors, providing customers with adaptive, intelligent SaaS security is here.

What is Managed Data Detection and Response (MDDR)?

Melissa Garcia

min read

Jan 20, 2026

What is Managed Data Detection and Response (MDDR)?

Discover what Managed Data Detection and Response (MDDR) is, why organizations need it in 2026, and how to integrate it into your broader data security program.

Shadow IT vs. Shadow Apps: Clearing Up the Confusion in SaaS Security

Melissa Garcia

min read

Jan 16, 2026

Shadow IT vs. Shadow Apps: Clearing Up the Confusion in SaaS Security

Shadow IT and Shadow Apps are not the same. Learn how Shadow Apps quietly expose data inside SaaS platforms like Google Workspace, and how modern security teams regain control.

Best Insider Risk Management Tools for SaaS

Melissa Garcia

min read

Jan 14, 2026

Best Insider Risk Management Tools for SaaS

Insider risk management is all the buzz in 2026. Discover the best tools on the market for SaaS. Compare strengths, limitations, and AI-driven approaches to reducing insider risk.

Melissa Garcia

min read

Jan 12, 2026

Top 10 SaaS Security Trends of 2026

Explore the top SaaS security trends for 2026, including insider threats, OAuth abuse, shadow AI, data sprawl, and supply chain risk - and what security teams should watch for.

The SOC 2 Fraud Scheme Everybody is Talking About, & the Google Drive Link That Exposed It

Melissa Garcia

min read

Jan 9, 2026

The SOC 2 Fraud Scheme Everybody is Talking About, & the Google Drive Link That Exposed It

The SOC 2 fraud scheme made headlinesbut a misconfigured Google Drive link caused the real damage. Learn why SaaS data sharing is the bigger risk.

DoControl’s 2026 Product Vision: Securing the SaaS Future

Tamir Passi

min read

Jan 8, 2026

DoControl’s 2026 Product Vision: Securing the SaaS Future

Read our 2026 Product Vision from our VP of Product himself. Discover how DoControl plans to redefine the industry standard, and push through boundaries in the upcoming year.

Insider Threat Prevention: 20 Best Practices To Implement

Melissa Garcia

min read

Jan 6, 2026

Insider Threat Prevention: 20 Best Practices To Implement

Insider threat prevention in SaaS requires more than alerts. Explore 20 best practices for access governance, DLP, and automated remediation across Google Workspace and Slack.

Melissa Garcia

min read

Dec 22, 2025

DoControl’s Top 10 Achievements of 2025

Read DoControl's top 10 achievements of 2025, including new features, updates, accolades, and innovations to solve today's most pressing SaaS security challenges.

Data Security for Infrastructure & Security Technology

Melissa Garcia

min read

Dec 19, 2025

Data Security for Infrastructure & Security Technology

Explore the data security challenges infrastructure and security teams face as SaaS environments scale and AI-driven tools reshape access.

From Classification to Control: DoControl and Sentra Partner to Deliver Actionable Data Protection

Melissa Garcia

min read

Dec 18, 2025

From Classification to Control: DoControl and Sentra Partner to Deliver Actionable Data Protection

Data classification is only the first part in protecting your data. What happens next? Learn how DoControl and Sentra are joining together in a strategic partnership to deliver customers end-to-end SaaS data security.

Can Google Drive Files Be Indexed by Search Engines and AI?

Melissa Garcia

min read

Dec 17, 2025

Can Google Drive Files Be Indexed by Search Engines and AI?

Publicly shared Google Drive files can appear in search results and AI summaries, often without teams realizing it. Learn how this happens and how to protect your organization from unintended data exposure.

Melissa Garcia

min read

Dec 16, 2025

Data Security for Financial Services

Explore the data security challenges financial services teams face, their biggest use cases, and how an automated SaaS data security solution keeps them fully protected.

Melissa Garcia

min read

Dec 11, 2025

How to Secure Google Workspace

Google Workspace is essential for collaboration, but it also creates hidden risks. Learn the principles behind securing Google Workspace effectively and why modern environments require visibility and automation beyond native tools.

DoControl Named a 2025 Spark Matrix Leader in SaaS Security Posture Management (SSPM)

Melissa Garcia

min read

Dec 10, 2025

DoControl Named a 2025 Spark Matrix Leader in SaaS Security Posture Management (SSPM)

DoControl has been recognized as a 2025 Spark Matrix Leader in SaaS Security Posture Management. See what made us stand out.

Melissa Garcia

min read

Dec 9, 2025

Data Security for Manufacturing

Explore the data security challenges manufacturing teams face, their biggest use cases, and how an automated SaaS data security solution keeps them fully protected.

Stop Expecting Enterprise Browsers to Do Data Security: What They Miss and How to Fill the Gap

Matt Dubreuil

min read

Dec 8, 2025

Stop Expecting Enterprise Browsers to Do Data Security: What They Miss and How to Fill the Gap

Enterprise browsers are useful, but their rigidity prevents them from being a standalone DLP or data security solution. Learn the gaps, what they miss, and why true data security requires a new approach.

CrowdStrike Insider Risk Incident: What Security Leaders Need to Know

Melissa Garcia

min read

Dec 5, 2025

CrowdStrike Insider Risk Incident: What Security Leaders Need to Know

CrowdStrike uncovered and terminated a malicious insider who shared internal data with a cybercrime group. Learn what happened.

Melissa Garcia

min read

Dec 4, 2025

Data Security for FinTech

Explore the data security challenges Financial Technology teams face, their biggest use cases, and how an automated SaaS data security solution keeps them fully protected.

Melissa Garcia

min read

Dec 1, 2025

Data Security for Media

Explore the data security challenges Media companies face, their biggest use cases, and how an automated SaaS data security solution keeps them fully protected.

TSMC’s Insider Risk Crisis Reveals How Quickly Data Incidents Impact Market Value

Melissa Garcia

min read

Nov 27, 2025

TSMC’s Insider Risk Crisis Reveals How Quickly Data Incidents Impact Market Value

The TSMC insider incident shows how quickly insider risk can trigger stock drops, investor distrust, and financial fallout. Learn what happened, and how modern data security could have prevented it.

Choosing the Right SaaS DLP Solution: A Buyer’s Checklist for Security Leaders

Melissa Garcia

min read

Nov 26, 2025

Choosing the Right SaaS DLP Solution: A Buyer’s Checklist for Security Leaders

Discover how to choose the best SaaS DLP solution with a practical buyer’s checklist, key evaluation criteria, and expert guidance for modern security teams.

Melissa Garcia

min read

Nov 24, 2025

Data Security for Healthcare

Explore the data security challenges Healthcare companies face, their biggest use cases, and how an automated SaaS data security solution keeps them fully protected.

Salesforce Customers Hit with ANOTHER Third-Party-Vendor Data Breach: What You Need to Know

Melissa Garcia

min read

Nov 21, 2025

Salesforce Customers Hit with ANOTHER Third-Party-Vendor Data Breach: What You Need to Know

The new Gainsight breach shows how fast SaaS supply-chain attacks are evolving. Here’s what Salesforce customers need to know - and how to lock down third-party apps.

Melissa Garcia

min read

Nov 19, 2025

Agentic AI Data Security Risks: Why Non-Human Identities Are the New Threat in 2026

Agentic AI introduces new data risks. Learn how to secure non-human identities, prevent data leaks, and keep AI agents under control.

Top 3 SaaS Data Exposure Scenarios (and How SaaS DLP Prevents Them)

Melissa Garcia

min read

Nov 17, 2025

Top 3 SaaS Data Exposure Scenarios (and How SaaS DLP Prevents Them)

Learn the most common SaaS data exposure scenarios, how they occur, and how modern SaaS DLP protects your environment from insider threats, external exposure, and shadow AI.

Melissa Garcia

min read

Nov 14, 2025

Data Security for Education

Explore the data security challenges Educational systems face, their biggest use cases, and how an automated SaaS data security solution keeps them fully protected.

DoControl Named a Leader in the Frost & Sullivan 2025 SaaS Security Posture Management (SSPM) Radar

Melissa Garcia

min read

Nov 12, 2025

DoControl Named a Leader in the Frost & Sullivan 2025 SaaS Security Posture Management (SSPM) Radar

See why Frost & Sullivan recognized DoControl as an SSPM leader, and how we are driving innovation and growth in the world of SaaS data security.

Intel’s Insider Threat: How One Engineer Walked Away with 18,000 ‘Top Secret’ Files

Melissa Garcia

min read

Nov 10, 2025

Intel’s Insider Threat: How One Engineer Walked Away with 18,000 ‘Top Secret’ Files

Intel’s insider data theft shows how easily sensitive data can walk out the door. Learn what happened, how it happened, and how to prevent insider threats in your org.

Matt Dubreuil

min read

Nov 7, 2025

The Real Cost of a SaaS Data Breach

Learn the real cost of a SaaS data breach, and how one mistake can result in financial turmoil, diminished brand reputation, and loss of customer + investor trust.

How is SaaS DLP Different from Traditional DLP?

Melissa Garcia

min read

Nov 5, 2025

How is SaaS DLP Different from Traditional DLP?

Discover the key differences between SaaS DLP and traditional DLP, why legacy tools fail to protect SaaS data, and how SaaS-native DLP solutions close the gaps with real-time, automated protection.

Top 10 Obsidian Competitors and Alternatives

Melissa Garcia

min read

Nov 3, 2025

Top 10 Obsidian Competitors and Alternatives

Learn the strengths and weaknesses of Obsidian, and where other SaaS security solutions fill the gaps.

Palantir Former Employees Steal Company Data: Lessons From the Insider Risk Case

Melissa Garcia

min read

Oct 31, 2025

Palantir Former Employees Steal Company Data: Lessons From the Insider Risk Case

Palantir’s insider risk lawsuit reveals how easily sensitive data can walk out the door through tools like Slack. Learn what happened, why insider threats are rising, and how visibility and automation can prevent the next data exfiltration incident.

Gemini AI Security Risks: How Agentic AI Expands the Enterprise Attack Surface

Melissa Garcia

min read

Oct 29, 2025

Gemini AI Security Risks: How Agentic AI Expands the Enterprise Attack Surface

Discover the top Gemini AI security risks and how agentic AI expands enterprise attack surfaces through identity, SaaS, and data access exposure.

Top 10 AppOmni Competitors and Alternatives

Melissa Garcia

min read

Oct 28, 2025

Top 10 AppOmni Competitors and Alternatives

Explore AppOmni’s strengths, limitations, and top alternatives for an effective SaaS security solution.

What Google Workspace Solutions Help Prevent Account Compromise? A Guide for Security Leaders

Melissa Garcia

min read

Oct 24, 2025

What Google Workspace Solutions Help Prevent Account Compromise? A Guide for Security Leaders

Learn what Google Workspace solutions help prevent account compromise.

Introducing DoControl’s NEW free self-serve risk assessment. Discover your SaaS data exposure in minutes and instantly unlock your external sharing risks, sensitive data exposure, and SaaS security score - all at your own convenience.

Melissa Garcia

min read

Oct 23, 2025

DoControl’s Free Self-Serve Risk Assessment: Instantly Uncover Your SaaS Data Exposure

Introducing DoControl’s NEW free self-serve risk assessment. Discover your SaaS data exposure in minutes and instantly unlock your external sharing risks, sensitive data exposure, and SaaS security score - all at your own convenience.

Top 10 Metomic Alternatives and Competitors

Melissa Garcia

min read

Oct 21, 2025

Top 10 Metomic Alternatives and Competitors

Explore the top 10 Metomic alternatives and competitors for SaaS security, DLP, and data protection in 2026.

What is SaaS DLP? The Complete Guide to SaaS Data Loss Prevention (2026)

Melissa Garcia

min read

Oct 17, 2025

What is SaaS DLP? The Complete Guide to SaaS Data Loss Prevention (2026)

SaaS DLP protects sensitive data inside your cloud apps — the layer traditional DLP, CASB, and native tools miss. Learn what SaaS DLP is, why legacy tools fall short, and how to implement an 8-step SaaS data loss prevention strategy built for your Google Workspace environment.

How DoControl is Redefining Support and Customer Success with AI

Anna Simhovich Pearl

min read

Oct 15, 2025

How DoControl is Redefining Support and Customer Success with AI

Learn how our Support and Customer Success teams leverage AI to drive customer service excellence, efficiency, and innovation.

Stopping Compromised Account Attacks in SaaS: How to Protect Your Environment From a Data Breach

Melissa Garcia

min read

Oct 13, 2025

Stopping Compromised Account Attacks in SaaS: How to Protect Your Environment From a Data Breach

Discover why compromised accounts are the leading SaaS attack vector, how attackers gain access, what to watch for during a breach, and how to protect against these threats.

Top 10 Valence Alternatives and Competitors

Melissa Garcia

min read

Oct 10, 2025

Top 10 Valence Alternatives and Competitors

Learn the top Valence alternatives and where each solution fits into your SaaS security strategy.

What Is SaaS Security? Why Every Company Needs a Modern SaaS Security Solution

Melissa Garcia

min read

Oct 8, 2025

What Is SaaS Security? Why Every Company Needs a Modern SaaS Security Solution

Learn what SaaS security is, why it matters, and the six key pillars every modern enterprise needs to protect their SaaS environment.

Microsoft 365 Copilot Security Risks - What Security Leaders Need to Know after EchoLeak

Melissa Garcia

min read

Oct 2, 2025

Microsoft 365 Copilot Security Risks - What Security Leaders Need to Know after EchoLeak

Learn the real risks Copilot introduces to M365 environments and how EchoLeak changed the world of AI security forever.

Cloud Security Alliance Formalizes SaaS Security Capability Framework – What You Need to Know

Matt Dubreuil

min read

Oct 1, 2025

Cloud Security Alliance Formalizes SaaS Security Capability Framework – What You Need to Know

Learn how the Cloud Security Alliance’s new SaaS Security Capability Framework sets the standard for securing SaaS apps and data.

Rewriting SaaS Security: Why Data, Identity, and AI Require a New Approach

Omri Weinberg

min read

Sep 30, 2025

Rewriting SaaS Security: Why Data, Identity, and AI Require a New Approach

Insights from our Co-Founder & CEO: why data, identity, and AI require a new approach when it comes to effective SaaS security.

Does Gemini Have Access to Your Google Drive?

Melissa Garcia

min read

Sep 26, 2025

Does Gemini Have Access to Your Google Drive?

Discover if Gemini can access your Google Drive, the security risks it creates in Google Workspace, and how DoControl keeps sensitive data safe.

DoControl vs. Reco: Why DoControl Wins When it Comes to Control and Remediation

Melissa Garcia

min read

Sep 24, 2025

DoControl vs. Reco: Why DoControl Wins When it Comes to Control and Remediation

Learn the strengths and limitations of Reco, and how DoControl closes critical SaaS security gaps with control, governance, remediation, and DLP-like protection.

Guy Rosenthal

min read

Sep 22, 2025

Microsoft Entra ID Vulnerability: How a Hidden Security Flaw Enables Global Admin Access

A newly uncovered flaw in Microsoft Entra ID exposes organizations to invisible, cross-tenant Global Admin compromise. Here’s what security leaders need to know.

DoControl vs. Nightfall: Why DoControl Wins For Accurate Risk Detection & Remediation

Melissa Garcia

min read

Sep 18, 2025

DoControl vs. Nightfall: Why DoControl Wins For Accurate Risk Detection & Remediation

Learn the limitations of Nightfall, and how DoControl fills in the gaps for organizations who need accurate risk detection and historical remediation.

Glean Security Risks You Need to Know: A Guide on Adopting AI Securely

Melissa Garcia

min read

Sep 16, 2025

Glean Security Risks You Need to Know: A Guide on Adopting AI Securely

Discover the security risks of popular AI-tool, Glean, & how your organization can safely innovate without compromising security.

Top 10 Nightfall Alternatives and Competitors

Melissa Garcia

min read

Sep 15, 2025

Top 10 Nightfall Alternatives and Competitors

Learn the strengths and weaknesses of Nightfall's top 10 competitors.

Jaguar Land Rover Data Breach: Real World Consequences of Weak Security Controls

Melissa Garcia

min read

Sep 12, 2025

Jaguar Land Rover Data Breach: Real World Consequences of Weak Security Controls

Learn the real-world repercussions of the latest Jaguar Land Rover data breach.

DoControl vs. Nudge - Why DoControl Wins When it Comes to Detection & Response

Melissa Garcia

min read

Sep 11, 2025

DoControl vs. Nudge - Why DoControl Wins When it Comes to Detection & Response

Learn the key differentiators between Nudge Security and DoControl.

Gemini in Google Workspace: Security Risks You Need to Know

Melissa Garcia

min read

Sep 9, 2025

Gemini in Google Workspace: Security Risks You Need to Know

Learn the true risks of Gemini in Google Workspace, and the key things you need to know to keep your data secure.

The Salesloft Drift Breach: What it Means for the Future of SaaS Security

Melissa Garcia

min read

Sep 5, 2025

The Salesloft Drift Breach: What it Means for the Future of SaaS Security

What happened in the Salesloft Drift breach? Learn what it means for the future of SaaS security.

How to Prevent Oversharing of Sensitive Documents in SaaS

Melissa Garcia

min read

Sep 4, 2025

How to Prevent Oversharing of Sensitive Documents in SaaS

Discover how to prevent oversharing of sensitive documents in SaaS platforms like Google Workspace and Slack.

DLP: A Program, Not a Point Solution – DoControl Releases Report on DLP

Melissa Garcia

min read

Sep 3, 2025

DLP: A Program, Not a Point Solution – DoControl Releases Report on DLP

Learn how DLP is shifting in 2025 from a single point solution to a comprehensive, layered program.

DoControl vs. Cyberhaven - Why DoControl Wins When it Comes to Modern Data Security

Melissa Garcia

min read

Sep 2, 2025

DoControl vs. Cyberhaven - Why DoControl Wins When it Comes to Modern Data Security

Learn where Cyberhaven falls short, and where DoControl shines in adressing critical gaps left behind by other security vendors.

Top 10 Varonis Alternatives and Competitors

Matt Dubreuil

min read

Aug 28, 2025

Top 10 Varonis Alternatives and Competitors

Learn the strengths and limitations of Varonis' top 10 alternatives.

Helping Security Professionals Justify SaaS Security Investments

Matt Dubreuil

min read

Aug 27, 2025

Helping Security Professionals Justify SaaS Security Investments

Learn 3 key proven ways to justify SaaS security investments to your C-Suite, from DoControl's Head of Revenue himself.

Top 10 Netskope Alternatives and Competitors

Matt Dubreuil

min read

Aug 22, 2025

Top 10 Netskope Alternatives and Competitors

Discover the top Netskope alternatives and competitors, giving you what you need to know when selecting the right security vendor for your organization.

The Workday Data Breach: Taking Control of Your SaaS Before Hackers Do

Melissa Garcia

min read

Aug 21, 2025

The Workday Data Breach: Taking Control of Your SaaS Before Hackers Do

Workday just suffered a massive data breach - learn what happened, how it happened, and how it could have been prevented.

Top 10 Cyberhaven Alternatives and Competitors

Matt Dubreuil

min read

Aug 20, 2025

Top 10 Cyberhaven Alternatives and Competitors

Learn the top 10 Cyberhaven competitors, their strengths, and their limitations, ensuring you can make an informed decision on which vendor(s) are right for your organization’s needs.

What to Consider When Picking a SaaS Security Vendor (and the Red Flags to Avoid)

Melissa Garcia

min read

Aug 19, 2025

What to Consider When Picking a SaaS Security Vendor (and the Red Flags to Avoid)

Learn the key factors to consider when picking a vendor and the red flags to avoid.

DoControl Expands Configuration Drift Capabilities, Becoming the First Comprehensive SSPM

Melissa Garcia

min read

Aug 18, 2025

DoControl Expands Configuration Drift Capabilities, Becoming the First Comprehensive SSPM

DoControl becomes the first comprehensive SSPM with the launch of their enhanced configuration drift capabilities.

Matt Dubreuil

min read

Aug 13, 2025

What Risks Do Generative AI Create in SaaS Applications?

Learn how generative AI impacts SaaS security, key risks for security leaders, and how DoControl safeguards sensitive data in the AI era.

Top 10 BetterCloud Competitors & Alternatives in 2026

Matt Dubreuil

min read

Aug 7, 2025

Top 10 BetterCloud Competitors & Alternatives in 2026

Discover the top 10 BetterCloud competitors and alternatives in 2025. Compare features, pros, and cons of each SaaS management solution to find the best fit for your business

What Is SaaS Data Sprawl and How Do You Stop It?

Melissa Garcia

min read

Aug 1, 2025

What Is SaaS Data Sprawl and How Do You Stop It?

Learn what SaaS data sprawl is, the risks it poses to your organization, and how to stop it.

Dating Safety App “Tea” Hit by Massive Data Leak: Thousands of Women’s Personal Information Exposed

Melissa Garcia

min read

Jul 30, 2025

Dating Safety App “Tea” Hit by Massive Data Leak: Thousands of Women’s Personal Information Exposed

Learn the shocking truth behind women's safety dating app "Tea" and the massive data breach they suffered.

From Assistant to Actor: How Claude’s Agentic AI Challenges Data Protection

Melissa Garcia

min read

Jul 29, 2025

From Assistant to Actor: How Claude’s Agentic AI Challenges Data Protection

Learn about the new security risks of agentic AI within financial service companies.

Redefining SaaS DLP: DoControl Launches Advanced Data Scanning Capabilities

Melissa Garcia

min read

Jul 28, 2025

Redefining SaaS DLP: DoControl Launches Advanced Data Scanning Capabilities

Learn how DoControl is redefining what it means to protect your most critical SaaS data in 2025 with our newest DLP product capability.

The Importance of Granular Access Controls in SaaS Security

Melissa Garcia

min read

Jul 24, 2025

The Importance of Granular Access Controls in SaaS Security

Learn the importance of granular access controls when it comes to protecting your SaaS environment, and locking down your data.

How to Monitor Insider Threats in SaaS Tools

Melissa Garcia

min read

Jul 22, 2025

How to Monitor Insider Threats in SaaS Tools

Learn how to monitor insider threats in SaaS environments, what signals to monitor, and how to respond before sensitive data walks out the door.

Secure Remote Work: How to Protect Your Distributed Workforce Effectively

Melissa Garcia

min read

Jul 18, 2025

Secure Remote Work: How to Protect Your Distributed Workforce Effectively

Learn the security risks of remote work & how to secure your SaaS environment in the modern world.

Top 10 SaaS Security & SSPM Vendors of 2026

Matt Dubreuil

min read

Jul 16, 2025

Top 10 SaaS Security & SSPM Vendors of 2026

Learn the top 10 SaaS security & SSPM vendors of 2026 & see which one is right for you.

How to Detect and Secure Shadow AI Tools in SaaS Environments

Melissa Garcia

min read

Jul 15, 2025

How to Detect and Secure Shadow AI Tools in SaaS Environments

Learn how to detect GenAI shadow apps connected to your environment & how to mitigate their risks.

DoControl vs. BetterCloud – Why DoControl’s Winning Data Infrastructure Causes Companies to Make the Switch

Melissa Garcia

min read

Jul 14, 2025

DoControl vs. BetterCloud – Why DoControl’s Winning Data Infrastructure Causes Companies to Make the Switch

Learn the top differentiators that make organizations choose DoControl over BetterCloud.

Secure Cloud Collaboration: How to Protect Your Data

Melissa Garcia

min read

Jul 11, 2025

Secure Cloud Collaboration: How to Protect Your Data

Discover the challenges of securing collaborative cloud environments and learn a strategy to protect yours.

How Do I Revoke OAuth Access from Unauthorized Apps?

Melissa Garcia

min read

Jul 9, 2025

How Do I Revoke OAuth Access from Unauthorized Apps?

Learn the risks of unauthorized OAuth access and why modern solutions are essential for managing this hidden layer of SaaS exposure.

Zero Trust Data Access: Securing Your Data in a Cloud-First World

Melissa Garcia

min read

Jul 3, 2025

Zero Trust Data Access: Securing Your Data in a Cloud-First World

Discover what zero trust data access really means, why legacy access controls aren’t cutting it anymore, and how to move toward a smarter, more secure approach

Shadow Apps and Third-Party Risks: How Connected Apps Threaten Google Workspace Security

Melissa Garcia

min read

Jul 1, 2025

Shadow Apps and Third-Party Risks: How Connected Apps Threaten Google Workspace Security

Shadow apps - unapproved third-party applications connected via OAuth - pose a growing security risk to organizations using Google Workspace. Learn how shadow apps work, why they’re so difficult to detect, the rise of GenAI-powered integrations, and how platforms like DoControl help organizations discover, assess, and remediate these threats to maintain strong SaaS security.

How User Behavior Impacts Google Workspace Security: Common Things To Look For

Melissa Garcia

min read

Jun 30, 2025

How User Behavior Impacts Google Workspace Security: Common Things To Look For

Learn the most common risky user behaviors in Google Workspace and how to protect your company data.

The $14B Security Gap: What the Scale AI Incident Teaches Us About Google Workspace Data Risk

Matt Dubreuil

min read

Jun 26, 2025

The $14B Security Gap: What the Scale AI Incident Teaches Us About Google Workspace Data Risk

Understand the critical security oversight in ScaleAI’s Google Workspace environment that resulted in sensitive data exposure.

Innovating at Speed: DoControl Hackathon Highlights What’s Next in SaaS Security

Matt Dubreuil

min read

Jun 26, 2025

Innovating at Speed: DoControl Hackathon Highlights What’s Next in SaaS Security

Read about DoControl's 2025 Hackathon. Share our vision as we continue to deliver a deep and comprehensive SaaS data security solution.

How Do I Know If Former Employees Still Have Access to Company Data?

Melissa Garcia

min read

Jun 25, 2025

How Do I Know If Former Employees Still Have Access to Company Data?

Learn the risks of lingering employee access after offboarding, show you how these gaps occur, and explain how to build an airtight offboarding strategy that keeps your data protected.

How DoControl's Data Infrastructure Redefines Enterprise Speed and Scale

Itai Birenshtok

min read

Jun 24, 2025

How DoControl's Data Infrastructure Redefines Enterprise Speed and Scale

Our customer came to us after losing confidence in their long-time provider. Despite years of service, that vendor had only uncovered about 200 million assets in their Google Workspace. DoControl discovered 276+ million in just minutes. Get the full story.

The CISO’s Guide to SaaS Security in Cloud Computing

Melissa Garcia

min read

Jun 23, 2025

The CISO’s Guide to SaaS Security in Cloud Computing

Discover the unique risks SaaS introduces to your environment, and learn what an effective security strategy looks like in a cloud-first world.

Remediation in Google Workspace Security: What You Can Actually Do

Melissa Garcia

min read

Jun 20, 2025

Remediation in Google Workspace Security: What You Can Actually Do

Learn what the limitations of native remediation in Google Workspace and learn how security teams can take full control when it comes to protecting their SaaS environments.

Announcing DoControl Dot: The First AI-Powered SaaS Data Security Assistant

Tamir Passi

min read

Jun 18, 2025

Announcing DoControl Dot: The First AI-Powered SaaS Data Security Assistant

Introducing DoControl Dot, the first AI assistant purpose-built for SaaS data security.

Google Workspace DLP: Security Gaps You Need to Know

Melissa Garcia

min read

Jun 16, 2025

Google Workspace DLP: Security Gaps You Need to Know

Learn the limitations of Google DLP, and how you can take a layered approach to fill the gaps.

Secure File Sharing for Business: Protect Data Without Slowing Down Productivity

Melissa Garcia

min read

Jun 9, 2025

Secure File Sharing for Business: Protect Data Without Slowing Down Productivity

Learn the risks of file sharing and how your organization can protect its most sensitive data through safe sharing practices.

How To Know If Sensitive Files Are Publicly Shared In Your Organization

Melissa Garcia

min read

Jun 4, 2025

How To Know If Sensitive Files Are Publicly Shared In Your Organization

Your sensitive company data can end up online without you even knowing it. Learn how to spot warning signs of exposure and take proactive steps to protect your organization. This guide covers practical tips to help prevent data breaches and keep your information secure.

The Pitfalls of Public Sharing in Google Workspace Security

Melissa Garcia

min read

Jun 2, 2025

The Pitfalls of Public Sharing in Google Workspace Security

Public sharing in Google Workspace is often done out of convenience, but the risks are deeply detrimental. Learn the specific threats it could bring to your organization and how to gain back control.

Melissa Garcia

min read

May 27, 2025

ITDR Part #3: From Reactive to Resilient: Responding to Identity Threats in Real Time

Learn how organizations can move from detecting identity-based threats to actually stopping them in real time – using identity signals to drive policy-based enforcement actions.

Pain Point #6: The Compliance Nightmare: How Google Workspace Misconfigurations Put Your Data At Risk

Sara Stein

min read

May 22, 2025

Pain Point #6: The Compliance Nightmare: How Google Workspace Misconfigurations Put Your Data At Risk

Learn how to transform your Misconfigurations approach from reactive to proactive, prevent potential data breaches before they occur, and maintain continuous compliance across your entire SaaS stack.

Melissa Garcia

min read

May 20, 2025

The Impact of GenAI on SaaS Security

Generative AI tools like ChatGPT, Claude, and Copilot are transforming how teams work, but they’re also introducing major blind spots in SaaS security. Learn about the biggest risks GenAI tools bring into SaaS environments, and what security leaders can do to protect sensitive data and maintain compliance.

Melissa Garcia

min read

May 19, 2025

ITDR Part #2: Identity Based Threats & How You Can Detect Them from Within

The second part of our ITDR Blog Series brings you how insider threats manifest in SaaS environments, what behaviors to watch for, and how identity profiling and risk scoring can help security teams detect and respond before real damage is done.

The Coinbase Security Breach: A Wake-Up Call for Insider Threat Defense

Matt Dubreuil

min read

May 15, 2025

The Coinbase Security Breach: A Wake-Up Call for Insider Threat Defense

Discover how the recent Coinbase breach happened and what steps your organization can take to prevent similar cybersecurity threats.

ITDR Part #1: Why Identity Is the New Perimeter

Melissa Garcia

min read

May 13, 2025

ITDR Part #1: Why Identity Is the New Perimeter

In our first part of our ITDR mini series, learn what ITDR is, why its so critical in 2025, and how you can implement a full-proof ITDR strategy to secure your SaaS environment.

Sharpen Your Pencils: Top Security Budget Allocations for a SaaS-First 2025

Matt Dubreuil

min read

May 9, 2025

Sharpen Your Pencils: Top Security Budget Allocations for a SaaS-First 2025

Our Head of Revenue shares a breakdown of the top budget priorities for SaaS security in 2025, how they're interconnected, their role in your success, + practical ways you can implement them efficiently.

SaaS vs. Cloud: Key Differences and Security Risks

Melissa Garcia

min read

May 8, 2025

SaaS vs. Cloud: Key Differences and Security Risks

Learn the core differences between SaaS and traditional cloud environments. Understand the security risks unique to SaaS and see how DoControl helps modern businesses take back control.

SaaS Security: Why The Time to Act is Now

Matt Dubreuil

min read

May 1, 2025

SaaS Security: Why The Time to Act is Now

J.P. Morgan CISO Patrick Opet highlights the urgent need for SaaS security. Discover his insights and key takeaways to strengthen your SaaS security strategy today.

Google Workspace Security: Insider Threats and Identity Challenges

Sara Stein

min read

Apr 29, 2025

Pain Point #5: Insider Threats and Identity Challenges

Within Google Workspace, insider threats and identity challenges are a major liability to organization's SaaS environments. Learn the challenges, risks, and solution to insider threats and identity attacks within Google Workspace and equip your security teams with what they need to secure their SaaS in 2025.

SaaS Security Assessment: What to Check to Stay Secure

Melissa Garcia

min read

Apr 17, 2025

SaaS Security Assessment: What to Check to Stay Secure

Learn what a SaaS security assessment is, why it matters, what to look for, and how platforms like DoControl help organizations close your organizations data exposure gaps before they become big breaches & even bigger problems.

The CISO’s Guide to Data Protection for Google Workspace

Melissa Garcia

min read

Apr 10, 2025

The CISO’s Guide to Data Protection for Google Workspace

Learn everything you need to know about data protection as a CISO operating in Google Workspace. Explore key risks in Google Workspace, Google’s native security limitations, and actionable steps to secure your SaaS data at scale.

CASB, DLP, SSPM: So Many Terms, Such Little Clarity

Matt Dubreuil

min read

Apr 2, 2025

CASB, DLP, SSPM: So Many Terms, Such Little Clarity

A deep dive into the hurdles organizations face when managing SaaS security, examining how CASB, DLP, and SSPM categories fail to properly solve the biggest security gaps of all.

DoControl Partners with Wursta to Elevate Google Workspace Security

Matt Dubreuil

min read

Mar 31, 2025

DoControl Partners with Wursta to Elevate Google Workspace Security

DoControl is excited to announce our official reseller partnership with Wursta.

Dropbox vs. Google Drive: Comparing Capabilities & Security Gaps

Melissa Garcia

min read

Mar 25, 2025

Dropbox vs. Google Drive: Comparing Capabilities & Security Gaps

Learn how how Dropbox and Google Drive compare from a security and data governance perspective. Discover which platform provides better file security for your business - and where third-party security solutions like DoControl can fill in the gaps.

Why Visibility Isn’t Enough: A Feature on DoControl’s Co-Founder & CEO, Omri Weinberg

Omri Weinberg

min read

Mar 21, 2025

Why Visibility Isn’t Enough: A Feature on DoControl’s Co-Founder & CEO, Omri Weinberg

Our Co-Founder & CEO, Omri Weinberg, recently sat down with WebsitePlanet to discuss the origins of DoControl, what sets us apart in the SaaS security space, and his expert insights on securing cloud environments. In this interview, Omri shares valuable advice for businesses looking to strengthen their security posture. Check out an excerpt from the conversation!

How to Conduct a Google Workspace Security Audit

Melissa Garcia

min read

Mar 20, 2025

How to Conduct a Google Workspace Security Audit

Google Workspace is a powerful collaboration tool, but without proper security measures, it can leave your organization vulnerable to data breaches, compliance risks, and insider threats. This guide walks you through conducting a thorough security audit—covering access controls, third-party app risks, file-sharing settings, and more. Learn best practices for ongoing security, and discover how DoControl automates risk detection and remediation to keep your cloud environment secure.

Melissa Garcia

min read

Mar 17, 2025

Data Classification: A Modern Approach

Learn everything you need to know about data classification: key concepts, complexities, and considerations—plus a modern ‘Just in Time’ approach for smarter, scalable security.

What is a CASB? A Complete Guide to Cloud Access Security Brokers

Melissa Garcia

min read

Mar 14, 2025

What is a CASB? A Complete Guide to Cloud Access Security Brokers

Discover what a CASB is, its key functions, and how it helps protect sensitive data, enhance cloud security, and ensure compliance for your business.

Melissa Garcia

min read

Mar 3, 2025

What is Google Drive Encryption?

Google Drive Encryption protects data, but it has its limitations. Learn how Google Drive Encryption works, what its limitations are, and how to enhance security with advanced strategies, access controls, threat protection, and remediation.

Pain Point #4: It’s Hard to Leverage Google Labels to Prevent Data Loss

Sara Stein

min read

Feb 28, 2025

Pain Point #4: It’s Hard to Leverage Google Labels to Prevent Data Loss

Google Workspace has built a great classification system through its DLP engine and AI capabilities, but it does not provide visibility and actionably into the data exposure of those labels. Understand how to pair Google's Labels with DoControl's solution for comprehensive Google Workspace Security.

Pain point #3: Why Google Enterprise isn't enough for Shadow Apps

Sara Stein

min read

Feb 21, 2025

Pain Point #3: Google Enterprise Isn't Enough Protection Against Shadow Apps

Google Workspace was designed for collaboration, not security, proven by its limited abilities to properly protect your risky third-party applications. Read Part 3 of our 7 part blog series on how to properly address Google Workspace security.

Pain Point #2: Google Workspace DLP Capabilities are Limited

Sara Stein

min read

Feb 13, 2025

Pain Point #2: Google Workspace DLP Capabilities are Limited

Google Workspace was designed for collaboration, not security, proven by its limited DLP capabilities. Read Part 2 of our 7 part blog series on how to properly address Google Workspace security.

Pain Point #1: Why is Sensitive Data Overexposed in Google Drive?

Sara Stein

min read

Feb 6, 2025

Pain Point #1: Why is Sensitive Data Overexposed in Google Drive?

Google Workspace was designed for collaboration, not security. Learn about the key challenges organizations face with Google Workspace today and how to effectively mitigate them as part of our Google Workspace Security blog series.

How the U.S. Department of Defense Exposed Critical Military Data via Google Drive Public Sharing

Matt Dubreuil

min read

Jan 27, 2025

How the U.S. Department of Defense Exposed Critical Military Data via Google Drive Public Sharing

The U.S. Department of Defense inadvertently exposed sensitive information through a publicly shared Google Drive. Learn how this breach occurred and discover steps you can take to prevent it from happening in your organization.

ITDR: Mastering Identity Threat Detection and Response in 2026

Sara Stein

min read

Jan 20, 2025

ITDR: Mastering Identity Threat Detection and Response in 2026

Discover top tools and strategies for effective identity threat detection and response, helping you protect sensitive information and reduce security risks.

How DoControl and Google Workspace AI Labels Solve for Data Security

Guy Rosenthal

min read

Jan 17, 2025

How DoControl and Google Workspace AI Labels Solve for Data Security

This blog post explains Google Drive Labels, how Google AI automatically creates Labels, and how DoControl combines these Labels with HR and IDP metadata to solve for Data Security

Google Drive Security: The Complete Guide for 2026

Melissa Garcia

min read

Jan 15, 2025

Google Drive Security: The Complete Guide for 2026

Is your Google Drive really secure? On average, enterprises have 709,533 publicly exposed Google Drive files. Learn how Google Drive security actually works, where it falls short, and exactly how to close the gaps with step-by-step Admin Console settings, a quarterly audit process, and more.

Why DoControl Outshines Netskope in SaaS Security

Matt Dubreuil

min read

Jan 10, 2025

Why DoControl Outshines Netskope in SaaS Security

Discover why Netskope customers are shifting their SaaS security to DoControl, leveraging its comprehensive SSPM solution for enhanced data protection and access management.

Google Workspace Security: Best Practices, Settings & Checklist for 2026

Melissa Garcia

min read

Jan 10, 2025

Google Workspace Security: Best Practices, Settings & Checklist for 2026

Discover the top 10 Google Workspace security best practices in 2026 to protect your SaaS data, enhance your security posture, and prevent cyber threats from hurting your organization.

2024: A Strong Year of Growth and Innovation at DoControl

Matt Dubreuil

min read

Dec 30, 2024

2024: A Strong Year of Growth and Innovation at DoControl

DoControl had a highly successful year of innovation and growth, further solidifying our position as a market leader. This achievement is the result of company-wide efforts to ensure we are consistently providing the best support to our customers, prospects, and partners.

DoControl Named Leader in Frost and Sullivan Radar SSPM

Matt Dubreuil

min read

Dec 19, 2024

DoControl Named Leader in Frost and Sullivan Radar SSPM

Learn more on why DoControl's comprehensive SSPM solution is leading the market.

Matt Dubreuil

min read

Dec 17, 2024

What is Google Apps Manager (GAM)?

GAM is a powerful tool for Google Workspace administration, but it lacks features to fully secure your data and protect your Google Workspace environment. Discover better ways to safeguard your sensitive information.

Is Storing Sensitive Data on Google Drive Safe? (5 Essential Security Tips)

Hen Amartely

min read

Dec 10, 2024

Is Storing Sensitive Data on Google Drive Safe? (5 Essential Security Tips)

Learn 5 essential security tips for storing sensitive data on Google Drive. Protect your data with best practices like DLP, PoLP and AI classification.

Top 5 Ways to Secure Your Files and Avoid a Google Drive Data Breach

Hen Amartely

min read

Dec 5, 2024

Top 5 Ways to Secure Your Files and Avoid a Google Drive Data Breach

Learn how to protect your files and avoid a Google Drive data breach with 5 essential security tips, including 2FA, file permissions, and DLP tools.

Top 7 Tips for Secure File Sharing with Google Drive

Hen Amartely

min read

Dec 3, 2024

Top 7 Tips for Secure File Sharing with Google Drive

Learn the top 7 tips for secure file sharing with Google Drive. Protect your personal and corporate data with expert advice on access permissions, DLP and more.

The Hidden Holes in Your IdP Offboarding Process

Hen Amartely

min read

Dec 2, 2024

The Hidden Holes in Your IdP Offboarding Process

Discover the hidden vulnerabilities in your IdP offboarding process and how to secure them. Learn how DoControl ensures seamless synchronization, removes personal account access, and monitors departing employees to protect your SaaS data.

Google Workspace Security Assessment: Strengthen Your Security Posture

Hen Amartely

min read

Nov 21, 2024

Google Workspace Security Assessment: Strengthen Your Security Posture

Learn how to conduct a Google Workspace security assessment to evaluate risks, improve security, and protect your data with our step-by-step guide.

DoControl Unveils Generative AI Assistant for Enhanced Google Workspace Security

Hen Amartely

min read

Nov 20, 2024

DoControl Unveils Generative AI Assistant for Enhanced Google Workspace Security

DoControl has released an AI assistant to help teams gain real-time insights into Google Workspace security.

Google Workspace Security Compliance: A Guide for Businesses

Hen Amartely

min read

Nov 18, 2024

Google Workspace Security Compliance: A Guide for Businesses

Explore Google Workspace security compliance with best practices and key features for protecting sensitive data and meeting regulatory standards.

Slack Cyber Security Essentials: Risks, Best Practices and Top Tools in 2026

Hen Amartely

min read

Nov 10, 2024

Slack Cyber Security Essentials: Risks, Best Practices and Top Tools in 2026

Find out how to enhance Slack cyber security in 2026 with effective strategies and tools based on real Slack data breaches, their causes and consequences.

Google Drive Security: Key Risks and How to Stay Protected

Hen Amartely

min read

Nov 4, 2024

Google Drive Security: Key Risks and How to Stay Protected

Discover how Google Drive keeps business data secure in 2025 with encryption, 2FA, and privacy controls. Learn best practices to enhance your data security.

Slack DLP Partners: Choosing and Integrating the Right Solution in 2026

Hen Amartely

min read

Oct 30, 2024

Slack DLP Partners: Choosing and Integrating the Right Solution in 2026

Looking for a reliable Slack DLP partner? Find out what to look for in an integration in order to protect your data, ensure compliance, and prevent unauthorized data exposure.

Google Workspace Security: A Guide for Admins

Hen Amartely

min read

Oct 20, 2024

Google Workspace Security: A Guide for Admins

Learn how to secure your Google Workspace environment with this comprehensive guide for admins. Protect data, prevent breaches, and enhance security.

Google Workspace DLP: The Complete Guide to Data Loss Prevention in SaaS

Hen Amartely

min read

Oct 16, 2024

Google Workspace DLP: The Complete Guide to Data Loss Prevention in SaaS

Discover how to set up and optimize Data Loss Prevention (DLP) in Google Workspace to protect sensitive data and ensure compliance.

Securing Google Workspace After Migrating from Microsoft 365: How DoControl Can Help

Hen Amartely

min read

Oct 13, 2024

Securing Google Workspace After Migrating from Microsoft 365: How DoControl Can Help

Learn how to maintain and enhance security during your migration from Microsoft 365 to Google Workspace. Discover how DoControl helps protect data, manage permissions, and identify risks post-migration.

Is Google Workspace Secure? 7 Risks to Avoid

Hen Amartely

min read

Oct 11, 2024

Is Google Workspace Secure? 7 Risks to Avoid

Learn about the most common Google Workspace security risks and how to avoid them. Protect your business from data breaches and security threats.

5 Reasons Why Google Workspace Data Exposure is So Common

Hen Amartely

min read

Oct 9, 2024

5 Reasons Why Google Workspace Data Exposure is So Common

Discover the 5 main reasons for Google Workspace data exposure, from oversharing to incomplete offboarding. Learn practical steps to secure your sensitive data and avoid common risks.

No results found.

Please try different keyboards.

Blog

Terminated Employee Offboarding: 7 Steps to Close Every Data Security Gap

Get updates to your inbox

Terminated Employee Offboarding: 7 Steps to Close Every Data Security Gap

What Is AI Governance? A Practical Guide for SaaS-Driven Organizations

Anthropic’s Fable Shutdown: The New Front Line of AI Governance

The Essential Guide to SaaS Compliance

What Is UEBA? A Complete Guide to User and Entity Behavior Analytics

Meta AI Support Chatbot: How Hackers Prompted Their Way Into High-Profile Instagram Accounts

Carnival Data Breach: 1 Employee. 6M Victims. 9M Files.

CSPM vs. SSPM: Which Does Your Organization Need?

Common SaaS Security Misconfigurations: What They Are, How They Happen, and How to Fix Them

Top SSPM Tools and Vendors in 2026

What Is AI SPM? Why Most Definitions Are Missing the Point

SaaS Security as a Board-Level Risk: What It Means for Your CFO

The SSPM Buyer's Checklist: How to Evaluate SaaS Security Posture Management Platforms

Building an Enterprise SaaS Security Program: What You Need to Know

SSPM vs SASE: Why You Need Both for SaaS Security

1 Breach, 9,000 Schools, 231 Million People: Inside the Instructure Data Breach

Your HubSpot Data Is Public. You Just Don't Know It Yet.

SSPM Best Practices: How to Get the Most Out of SaaS Security Posture Management

ShinyHunters: Inside the Hacker Group Targeting Your SaaS Data (And How to Stop Them)

DoControl Data Classification: Combining Content, Context, and Identity to Protect SaaS Data

SaaS Security vs. Cloud Security: What's the Difference?

SaaS Security Checklist: 15 Steps to Secure Your SaaS Stack

SSPM vs. CASB: What's the Difference?

Behavioral Analytics in SaaS Security: How to Detect, Prioritize, and Eliminate Insider Threats

SSPM Explained: A Practical Guide to SaaS Security Posture Management in 2026

Vercel Breach: Third-Party AI Tool Compromise via Google Workspace OAuth

Kraken Insider Incident Signals a Growing Security Threat Across the Crypto Industry

Top SaaS Security Risks in 2026 (And How to Mitigate Each One)

DoControl's Role in Misconfigurations Management

Mercor Data Breach: When AI Innovation Outpaces Security

Strac vs. DoControl: Understanding Different Approaches to SaaS DLP

DoControl's Automated Remediation Workflows: Automation That Understands Your SaaS Risk

DoControl Raises the Standard for AI Security with Control for Google Gemini Gems

Frontline vs Business Plus (Pro) vs Enterprise: Choosing the Right Google Workspace Plan Through a Security Lens

DoControl’s Role in Insider Risk Management

The $82,000/48hr Nightmare: Why Traditional SaaS Security Can’t Stop a Rogue API Key

DoControl’s Role in DLP

DoControl vs. SpinAI: Comparing Approaches to SaaS Data Security

The Salesforce Experience Cloud Attack: A Wake-Up Call for Misconfigurations Management

DoControl’s Role in Data Governance

Key AI Security Use Cases in SaaS | Solved by DoControl

How DoControl + Google Workspace AI Labels Work Together to Protect Sensitive Data

Where Does Insider Risk Management Fit Within a SaaS Security Stack?

Former Nuance Employee Stole 1.2M Geisinger Patient Records

DoControl vs Wing Security: An SSPM Platform Comparison

Claude Code Security: AI That Secures Code, Not Your SaaS Ecosystem

The Dawn of the AI-Driven Cybercrime Era: When "Vibes" Meet Velocity

SaaS Security in 2026: The Complete Guide

DSPM vs DLP: Differences, Use Cases, How to Decide

Your 2026 Insider Risk Health Check: Uncover Your Insider Risk in SaaS

How DoControl Enforces Workflows for Detection + Automatic Remediation of Misconfiguration Drift

Migrating from Microsoft to Google Workspace: Keeping SaaS Security in Mind

The Hidden Security Risks of "Vibe Coding"

2026 Non-Human Identities (NHI) Report: DoControl Data

Former Google Employee Caught Stealing Company AI Trade Secrets

What is Moltbot? (Formerly, Clawdbot) | The Viral AI Assistant & the Security Risks it Brings

A Rogue Chrome Extension Exploits API Keys and Google Drive: A SaaS Security Nightmare

Teaching Alerts to Think: How AI is Rewriting SaaS Security Alerts at DoControl

What is Managed Data Detection and Response (MDDR)?

Shadow IT vs. Shadow Apps: Clearing Up the Confusion in SaaS Security

Best Insider Risk Management Tools for SaaS

Top 10 SaaS Security Trends of 2026

The SOC 2 Fraud Scheme Everybody is Talking About, & the Google Drive Link That Exposed It

DoControl’s 2026 Product Vision: Securing the SaaS Future

Insider Threat Prevention: 20 Best Practices To Implement

DoControl’s Top 10 Achievements of 2025

Data Security for Infrastructure & Security Technology

From Classification to Control: DoControl and Sentra Partner to Deliver Actionable Data Protection

Can Google Drive Files Be Indexed by Search Engines and AI?

Data Security for Financial Services

How to Secure Google Workspace

DoControl Named a 2025 Spark Matrix Leader in SaaS Security Posture Management (SSPM)

Data Security for Manufacturing

Stop Expecting Enterprise Browsers to Do Data Security: What They Miss and How to Fill the Gap

CrowdStrike Insider Risk Incident: What Security Leaders Need to Know

Data Security for FinTech

Data Security for Media